$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft File: bODpSXEbID5KyyK2gPP_9H7RbGE.mft (raw, json) Hash identifier: N2cwKH6OcaJ3zV3DRJpjWDGPbdyTv79racL65H78rDA= Subject key identifier: 21:85:6A:C7:D6:9F:3E:6D:DC:38:A6:B0:44:19:2E:B1:83:37:20:18 Authority key identifier: 6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 Certificate issuer: /CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft Manifest number: FD Signing time: Sat 23 Aug 2025 05:24:43 +0000 Manifest this update: Sat 23 Aug 2025 05:24:42 +0000 Manifest next update: Sat 30 Aug 2025 05:24:42 +0000 Files and hashes: 1: bODpSXEbID5KyyK2gPP_9H7RbGE.crl (hash: o09T80Ux5PVi+SdTUffzz7jx4gzl5L1somZUhCWEfEs=) 2: 7980C32AA71B11EFA8320136C4F9AE02.roa (hash: svWCFcB6b/XkbZIPeHevXUk9kvL6MAqPQu9nAp05skM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDC3F, serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Validity Not Before: Aug 23 05:24:42 2025 GMT Not After : Aug 30 05:24:42 2025 GMT Subject: CN=68a9509b-9ab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:80:10:18:15:ac:8f:4c:dc:bc:ec:39:d3:53: c9:04:a1:78:99:40:79:33:e2:bc:88:71:dc:bb:0d: 91:09:b4:6a:c4:8e:31:4f:10:da:52:bd:33:8c:58: f5:48:50:2f:7d:f7:59:41:59:28:83:c3:4a:73:a7: 0c:2e:95:94:94:0e:90:a8:02:e7:98:a5:c0:3b:6c: 12:14:36:fc:34:ea:47:c9:68:3b:4f:b0:e3:7b:42: ba:7a:7c:cf:ed:be:23:aa:80:f1:79:fc:d5:3b:00: 41:e0:b0:97:c4:b6:14:b6:34:26:9b:85:21:d8:a0: 2d:d4:19:16:9e:8c:e5:13:2b:f5:dc:a3:20:14:ff: b9:7f:7d:11:e2:64:4f:65:ce:6a:ab:d7:5e:25:6f: af:d6:ce:93:87:71:f6:c0:31:fb:bd:c7:91:93:aa: 52:f6:86:99:5b:41:20:8f:54:d4:dc:a8:11:76:99: 1e:30:60:6d:9d:3d:f9:10:00:50:d6:6b:87:76:09: 43:16:b1:89:41:e3:b9:8e:f9:65:71:d4:51:e6:28: df:c2:e6:c3:1e:96:88:44:bf:da:9e:db:85:99:a2: 65:78:1d:cf:80:78:2f:15:ff:70:c8:69:e5:82:de: cd:01:e7:72:6c:f0:83:74:7f:76:23:67:cb:39:1b: 68:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:85:6A:C7:D6:9F:3E:6D:DC:38:A6:B0:44:19:2E:B1:83:37:20:18 X509v3 Authority Key Identifier: keyid:6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:da:cb:a1:31:dd:d8:88:b3:74:33:22:f8:3c:f4:37:3a:b8: e4:2e:64:73:54:11:2b:68:24:a0:d4:8d:e1:53:2c:17:20:8c: 57:fb:ea:a1:eb:9c:04:b6:59:7b:69:1f:98:0c:fe:03:95:d6: 3e:0b:1a:ef:ee:d2:e0:80:e3:93:e8:d9:3f:47:89:c0:f1:37: 5d:58:4a:09:f8:05:36:29:0d:14:9b:d2:1b:ad:b3:20:e2:aa: 3a:fb:59:c2:64:bb:3a:c3:39:ab:a2:a3:e8:94:f7:5b:73:aa: f0:09:1e:64:a1:60:9f:23:00:bf:b5:53:62:c4:a9:70:c6:01: 94:ba:5e:54:0a:da:60:6c:32:17:6b:1b:cb:e8:27:c3:4f:b8: fa:41:2b:8e:3f:35:60:42:75:48:56:44:8e:f7:5d:ed:0a:e4: 41:3e:de:60:d8:3e:6f:69:fd:f7:17:5f:56:1c:cc:02:67:69: dd:08:0d:db:45:d2:3e:f6:23:10:13:6a:ad:c0:d6:df:39:1d: 32:91:49:f3:38:45:36:40:25:ac:6d:8f:b6:6d:1f:00:02:32: 95:7b:b6:c2:d1:c6:68:68:7b:32:e5:1c:9f:c8:f3:0c:4b:d9: 94:37:e5:e0:73:a1:8c:fc:16:6b:a4:e6:a4:aa:7b:db:a9:f5: a6:8c:fc:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDM0YxMTAvBgNVBAUTKDZDRTBFOTQ5NzExQjIwM0U0QUNCMjJCNjgwRjNGRkY0 N0VEMTZDNjEwHhcNMjUwODIzMDUyNDQyWhcNMjUwODMwMDUyNDQyWjAYMRYwFAYD VQQDEw02OGE5NTA5Yi05YWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8oAQGBWsj0zcvOw501PJBKF4mUB5M+K8iHHcuw2RCbRqxI4xTxDaUr0zjFj1 SFAvffdZQVkog8NKc6cMLpWUlA6QqALnmKXAO2wSFDb8NOpHyWg7T7Dje0K6enzP 7b4jqoDxefzVOwBB4LCXxLYUtjQmm4Uh2KAt1BkWnozlEyv13KMgFP+5f30R4mRP Zc5qq9deJW+v1s6Th3H2wDH7vceRk6pS9oaZW0Egj1TU3KgRdpkeMGBtnT35EABQ 1muHdglDFrGJQeO5jvllcdRR5ijfwubDHpaIRL/antuFmaJleB3PgHgvFf9wyGnl gt7NAedybPCDdH92I2fLORtojwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGFasfW nz5t3DimsEQZLrGDNyAYMB8GA1UdIwQYMBaAFGzg6UlxGyA+SssitoDz//R+0Wxh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREMzRi81Q0U4MTA0NjBF QjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklENUt5eUsyZ1BQXzlIN1Ji R0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPRHBTWEViSUQ1S3l5SzJnUFBfOUg3UmJHRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REMzRi81Q0U4MTA0NjBFQjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklE NUt5eUsyZ1BQXzlIN1JiR0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDe2suhMd3YiLN0MyL4PPQ3OrjkLmRzVBEraCSg1I3hUywXIIxX++qh 65wEtll7aR+YDP4DldY+Cxrv7tLggOOT6Nk/R4nA8TddWEoJ+AU2KQ0Um9IbrbMg 4qo6+1nCZLs6wzmroqPolPdbc6rwCR5koWCfIwC/tVNixKlwxgGUul5UCtpgbDIX axvL6CfDT7j6QSuOPzVgQnVIVkSO913tCuRBPt5g2D5vaf33F19WHMwCZ2ndCA3b RdI+9iMQE2qtwNbfOR0ykUnzOEU2QCWsbY+2bR8AAjKVe7bC0cZoaHsy5RyfyPMM S9mUN+Xgc6GM/BZrpOakqnvbqfWmjPy3 -----END CERTIFICATE-----Generated at Sat Aug 23 19:11:01 2025 by rpki-client